iOS jailbreaking is privilege escalation for the purpose of removing software restrictions imposed by Apple on iOS, tvOS and watchOS. It typically does this by using a series of kernel patches. Jailbreaking permits root access to iOS, allowing the downloading and installation of additional applications, extension, and themes that are unavailable through the official Apple App Store.
iOS jailbreaking dates back to the original iPhone in July 2007. Apple has responded with updates to iOS: patching exploits and upgrading hardware. Jailbreaking communities have not been legally threatened. The legal status of jailbreaking is unclear in most countries; while many prohibit tampering with digital locks, they tolerate jailbreaks that do not infringe on copyrights. In 2010, 2012, and 2015, the U.S. Copyright Office approved exemptions allowing smartphone users to jailbreak their devices. Due to the gradual increase in security in new iOS versions, hackers were unable to create a jailbreak for the latest release (until Ian Beer released async_wake), iOS 11, causing jailbreaking to temporarily lose prominence among users, with two of the three main Cydia repos, which ship default with Cydia, being archived and no longer accepting new packages or updates to existing ones. Multiple iOS 11 jailbreaks are currently in development.
- 1 Definition
- 2 Motivations
- 3 Types of jailbreaks
- 4 Security, privacy, and stability
- 5 History of exploit-disabling patch releases
- 6 Legal status
- 7 History of tools
- 8 See also
- 9 Notes
- 10 References
Jailbreaking in general means breaking the device out of its "jail", a metaphor used in Unix-like systems, for example in "FreeBSD jail". A jailbroken iPhone, iPod Touch, or iPad running iOS can still use the App Store, iTunes, and other normal functions, such as making telephone calls. Furthermore, a jailbroken device can be reverted to a standard 'jailed' device by restoring the device in Recovery Mode, although any incompatible software installed while jailbroken will be deleted.
One of the reasons for jailbreaking is to expand the feature set limited by Apple and its App Store. Apple checks apps for compliance with its iOS Developer Program License Agreement before accepting them for distribution in the App Store. However, their reasons for banning apps are not limited to safety and security and may be regarded as arbitrary and capricious. In one case, Apple mistakenly banned an app by a Pulitzer-Winning cartoonist because it violated its developer license agreement, which specifically bans apps that "contain content that ridicules public figures." To access banned apps, users rely on jailbreaking to circumvent Apple's censorship of content and features. Jailbreaking permits the downloading of programs not approved by Apple, such as user interface customization and tweaks.
Since software programs available through Cydia are not required to adhere to App Store guidelines, many of them are not typical self-contained apps but instead are extensions and customizations for iOS and other apps (commonly called tweaks). Users install these programs for purposes including personalization and customization of the interface by tweaks developed by developers and designers, adding desired features and fixing annoyances, and making development work on the device easier by providing access to the filesystem and command-line tools.
Use of handset on multiple carriers
Jailbreaking also opens the possibility for using software to unofficially unlock carrier-locked iPhones so they can be used with other carriers. Software-based unlocks have been available since September 2007, with each tool applying to a specific iPhone model and baseband version (or multiple models and versions). This includes the iPhone 4S, iPhone 4, iPhone 3GS, and iPhone 3G models.
An example of unlocking an iPhone through a Jailbreak utility would be Redsn0w. Through this software, iPhone users will be able to create a custom IPSW and unlock their device. Moreover, during the unlocking process, there are options to Install Cydia and iPad baseband as well.
Installation of malware
Computer criminals may jailbreak an iPhone to install malware, or target jailbroken iPhones on which malware can be installed more easily. The Italian cybersecurity company Hacking Team, which sells hacking software to law enforcement agencies, advised police to jailbreak iPhones to allow tracking software to be installed on them.
On iPhones, the installation of consumer software is generally restricted to installation through the App Store. Jailbreaking, therefore, allows the installation of pirated applications. It has been suggested that a major motivation for Apple to prevent jailbreaking is to protect the income of its App Store, including third-party developers and allow the buildup of a sustainable market for third-party software. However, the installation of pirated applications is also possible without jailbreaking, taking advantage of enterprise certificates to facilitate distribution of modified or pirated releases of popular applications.
Types of jailbreaks
When a device is booting, it loads Apple's own kernel initially.
An "untethered" jailbreak has the property that if the user turns the device off and back on, the device will start up completely, and the kernel will be patched without the help of a computer – thus enabling the user to boot without the need to use a computer. These jailbreaks are harder to make and take a lot of reverse engineering and years of experience.
With a "tethered" jailbreak, a computer is needed to turn the device on each time it is rebooted. If the device starts back up on its own, it will no longer have a patched kernel, and it may get stuck in a partially started state. By using a computer, the phone is essentially "re-jailbroken" (using the "boot tethered" feature of a jailbreaking tool) each time it is turned on. With a tethered jailbreak, the user can still restart SpringBoard ("respring") on the device without needing to reboot.
There is also a "semi-tethered" solution, which means that when the device boots, it will no longer have a patched kernel (so it will not be able to run modified code), but it will still be usable for normal functions such as making phone calls, or texting. To use any features that require running modified code, the user must start the device with the help of the jailbreaking tool in order for it to start with a patched kernel (jailbroken).
In July 2016, Pangu team introduced the "semi-untethered" jailbreak, which functions like a semi-tethered solution in that when the device boots, it no longer has a patched kernel (and thus access to jailbroken functions,) but also like an untethered device, in that a computer is not required to re-patch the kernel in order to re-enable the jailbreak. It is accomplished by installing an app that re-patches the kernel after rebooting.
Comparison to Android rooting
Jailbreaking of iOS devices has sometimes been compared to "rooting" of Android devices. Although both concepts involve privilege escalation, they differ in scope. Some Android devices allow users to modify or replace the operating system after unlocking the bootloader. Moreover, nearly all Android phones have an option to allow the user to install unknown, 3rd-party apps, so no exploit is needed for normal sideloading.
iOS is engineered with security measures including a "locked bootloader" to prevent users from modifying the operating system, and to prevent apps from gaining root privileges; jailbreaking an iOS device to defeat all security measures presents a significant technical challenge. It violates Apple's end-user license agreement for iOS. Until 2015 sideloading apps in general was difficult for most individual users, requiring them to purchase developer membership, while corporations could install private applications onto corporate phones. After 2015, this became free for all users, however doing so requires a basic understanding of Xcode and compiling iOS Apps. Apps installed this way have the restrictions of all other apps. In addition, alternative app stores utilising enterprise certificates have sprung up, offering modified or pirated releases of popular iOS applications and video games, some of which were either previously released through Cydia or are unavailable on the App Store due to them not complying with Apple developer guidelines.
Security, privacy, and stability
The first iPhone worm, iKee, appeared in early November 2009, created by a 21-year-old Australian student in the town of Wollongong. He told Australian media that he created the worm to raise awareness of security issues: jailbreaking allows users to install an SSH service, which those users can leave in the default insecure state. In the same month, F-Secure reported on a new malicious worm compromising bank transactions from jailbroken phones in the Netherlands, similarly affecting devices where the owner had installed SSH without changing the default password. In 2010 blogger John Gruber, who is close to Apple, said that users misunderstood some jailbreak exploits and that they were more serious than they appear. He commented that "it's odd how the press is mostly covering this as 'jailbreaking now more convenient' rather than 'remote code exploit now in the wild'", pointing out that the exploit allowed the creator of a malicious website to take control of iPhones accessing it.
Restoring a device with iTunes removes a jailbreak. However, doing so generally updates the device to the latest, and possibly non-jailbreakable, version, due to Apple's use of SHSH blobs. There are applications that aim to prevent this, by restoring the devices to the same version they are currently running whilst removing the jailbreaks. Examples of such tools include Cydia Eraser and Semi-Restore.
In 2012, Forbes staff analyzed a UCSB study on 1,407 free programs available from Apple and a third party source. Of the 1,407 free apps investigated, 825 were downloaded from Apple's App Store using the website App Tracker, and 526 from BigBoss (Cydia's default repository). 21% of official apps tested leaked device ID and 4% leaked location. Unofficial apps leaked 4% and 0.2% respectively. 0.2% of apps from Cydia leaked photos and browsing history, while the App Store leaked none. Unauthorized apps tended to respect privacy better than official ones. Also, a program available in Cydia called PrivaCy allows user to control the upload of usage statistics to remote servers.
History of exploit-disabling patch releases
Apple has released various updates to iOS that patch exploits used by jailbreak utilities; this includes a patch released in iOS 6.1.3 to software exploits used by the original evasi0n iOS 6–6.1.2 jailbreak, in iOS 7.1 patching the Evasi0n 7 jailbreak for iOS 7–7.0.6-7.1 beta 3. Bootrom exploits (exploits found in the hardware of the device) cannot be patched by Apple system updates, but can be fixed in hardware revisions such as new chips or new hardware in its entirety, as occurred with the iPhone 3GS in 2009.
On July 15, 2011, Apple released a new iOS version that closed the exploit used in JailbreakMe 3.0. The German Federal Office for Information Security had reported that JailbreakMe uncovered the "critical weakness" that information could be stolen or unwillingly downloaded malware by iOS users clicking on maliciously crafted PDF files. Before Apple released a fix for this security hole, jailbreak users had access to a fix published by the developer of JailbreakMe.
On January 27, 2015, Apple released iOS 8.1.3 that patched up the exploits used in jailbreak for iOS 8.0-8.1.2. It was not possible to jailbreak until the iOS 8.3 update. The iOS 9.1 update on October 21, 2015, included a patch for the Pangu iOS 9.0-9.0.2 Jailbreak.
On August 13, 2015, Apple updated iOS to 8.4.1, patching the TaiG exploit. Pangu and Taig teams both said they were working on exploiting iOS 8.4.1, and Pangu demonstrated these chances at the WWDC 2015.
On September 16, 2015, iOS 9 was announced and made available; it was released with a new "Rootless" security system, dubbed a "heavy blow" to the jailbreaking community.
On October 21, 2015, seven days after the Pangu iOS 9.0-9.0.2 Jailbreak release, Apple pushed the iOS 9.1 update, which contained a patch that rendered it nonfunctional.
On August 4, 2016, Apple released iOS version 9.3.4 to patch the semi-untethered jailbreak for 64-bit devices.
On August 25, 2016, Apple released iOS version 9.3.5 to patch three important vulnerabilities used for the secret jailbreak from the Pegasus Malware from the NSO Group.
On January 23, 2017, Apple released iOS 10.2.1 to patch jailbreak exploits released by Google for the Yalu iOS 10 jailbreak created by Luca Todesco.
On December 2, 2017, iOS 11.2 was released, and included a patch to the async_wake exploit by Ian Beer.
On May 29, 2018, iOS 11.4 was released, including a patch to 2 exploits (mptcp & multi_path) by Ian Beer
The legal status of jailbreaking is affected by laws regarding circumvention of digital locks, such as laws protecting digital rights management (DRM) mechanisms. Many countries do not have such laws, and some countries have laws including exceptions for jailbreaking.
International treaties have influenced the development of laws affecting jailbreaking. The 1996 World Intellectual Property Organization (WIPO) Copyright Treaty requires nations party to the treaties to enact laws against DRM circumvention. The American implementation is the Digital Millennium Copyright Act (DMCA), which includes a process for establishing exemptions for non-copyright-infringing purposes such as jailbreaking. The 2001 European Copyright Directive implemented the treaty in Europe, requiring member states of the European Union to implement legal protections for technological protection measures. The Copyright Directive includes exceptions to allow breaking those measures for non-copyright-infringing purposes, such as jailbreaking to run alternative software, but member states vary on the implementation of the directive.
While Apple technically does not support jailbreaking as a violation of its EULA, jailbreaking communities have generally not been legally threatened by Apple. At least two prominent jailbreakers have been given positions at Apple, albeit in at least one case a temporary one. Apple has also regularly (though possibly somewhat jokingly) thanked jailbreak communities for detecting security holes in iOS release notes.
Apple's support article concerning jailbreaking claims that they "may deny service for an iPhone, iPad, or iPod touch that has installed any unauthorized software." Therefore, anyone who is jailbroken, warranty or not, may or may not get support from Apple considering assistance with jailbreaking.
In 2010, Electronic Frontiers Australia said that it is unclear whether jailbreaking is legal in Australia, and that anti-circumvention laws may apply. These laws had been strengthened by the Copyright Amendment Act 2006.
In November 2012, Canada amended its Copyright Act with new provisions prohibiting tampering with digital locks, with exceptions including software interoperability. Jailbreaking a device to run alternative software is a form of circumventing digital locks for the purpose of software interoperability.
There had been several efforts from 2008–2011 to amend the Copyright Act (Bill C-60, Bill C-61, and Bill C-32) to prohibit tampering with digital locks, along with initial proposals for C-11 that were more restrictive, but those bills were set aside. In 2011, Michael Geist, a Canadian copyright scholar, cited iPhone jailbreaking as a non-copyright-related activity that overly-broad Copyright Act amendments could prohibit.
India's copyright law permits circumventing DRM for non-copyright-infringing purposes. Parliament introduced a bill including this DRM provision in 2010 and passed it in 2012 as Copyright (Amendment) Bill 2012. India is not a signatory to the WIPO Copyright Treaty that requires laws against DRM circumvention, but being listed on the US Special 301 Report "Priority Watch List" applied pressure to develop stricter copyright laws in line with the WIPO treaty.
New Zealand's copyright law allows the use of technological protection measure (TPM) circumvention methods as long as the use is for legal, non-copyright-infringing purposes. This law was added to the Copyright Act 1994 as part of the Copyright (New Technologies) Amendment Act 2008.
Jailbreaking might be legal in Singapore if done to provide interoperability and not circumvent copyright, but that has not been tested in court.
The law Copyright and Related Rights Regulations 2003 makes circumventing DRM protection measures legal for the purpose of interoperability but not copyright infringement. Jailbreaking may be a form of circumvention covered by that law, but this has not been tested in court. Competition laws may also be relevant.
The main law that affects the legality of iOS jailbreaking in the United States is the 2012 Digital Millennium Copyright Act (DMCA), which says "no person shall circumvent a technological measure that effectively controls access to a work protected under" the DMCA, since this may apply to jailbreaking. Every three years, the law allows the public to propose exemptions for legitimate reasons for circumvention, which last three years if approved. In 2010 and 2012, the U.S. Copyright Office approved exemptions that allowed smartphone users to jailbreak their devices legally, and in 2015 the Copyright Office approved an expanded exemption that also covers other all-purpose mobile computing devices, such as tablets. It is still possible Apple may employ technical countermeasures to prevent jailbreaking or prevent jailbroken phones from functioning. It is unclear whether it is legal to traffic in the tools used to make jailbreaking easy.
Digital Millennium Copyright Act exemptions
In 2007, Tim Wu, a professor at Columbia Law School, argued that jailbreaking "Apple's superphone is legal, ethical, and just plain fun." Wu cited an explicit exemption issued by the Library of Congress in 2006 for personal carrier unlocking, which notes that locks "are used by wireless carriers to limit the ability of subscribers to switch to other carriers, a business decision that has nothing whatsoever to do with the interests protected by copyright" and thus do not implicate the DMCA. Wu did not claim that this exemption applies to those who help others unlock a device or "traffic" in software to do so.
In 2010, in response to a request by the Electronic Frontier Foundation, the U.S. Copyright Office explicitly recognized an exemption to the DMCA to permit jailbreaking in order to allow iPhone owners to use their phones with applications that are not available from Apple's store, and to unlock their iPhones for use with unapproved carriers. Apple had previously filed comments opposing this exemption and indicated that it had considered jailbreaking to be a violation of copyright (and by implication prosecutable under the DMCA). Apple's request to define copyright law to include jailbreaking as a violation was denied as part of the 2009 DMCA rulemaking. In their ruling, the Library of Congress affirmed on July 26, 2010 that jailbreaking is exempt from DMCA rules with respect to circumventing digital locks. DMCA exemptions must be reviewed and renewed every three years or else they expire.
On October 28, 2012, the US Copyright Office released a new exemption ruling. The jailbreaking of smartphones continued to be legal "where circumvention is accomplished for the sole purpose of enabling interoperability of [lawfully obtained software] applications with computer programs on the telephone handset." However, the U.S. Copyright office refused to extend this exemption to tablets, such as iPads, arguing that the term "tablets" is broad and ill-defined, and an exemption to this class of devices could have unintended side effects. The Copyright Office also renewed the 2010 exemption for unofficially unlocking phones to use them on unapproved carriers, but restricted this exemption to phones purchased before January 26, 2013.
History of tools
A few days after the original iPhone became available in July 2007, developers released the first jailbreaking tool for it, and soon a jailbreak-only game app became available. In October 2007, JailbreakMe 1.0 (also called "AppSnapp") allowed people to jailbreak iPhone OS 1.1.1 on both the iPhone and iPod touch, and it included Installer.app as a way to get software for the jailbroken device. In February 2008, Zibri released ZiPhone, a tool for jailbreaking iPhone OS 1.1.3 and iPhone OS 1.1.4.
The iPhone Dev Team which is not affiliated with Apple, has released a series of free desktop-based jailbreaking tools. In July 2008 it released a version of PwnageTool to jailbreak the then new iPhone 3G on iPhone OS 2.0 as well as the iPod touch, newly including Cydia as the primary third-party installer for jailbroken software. PwnageTool continues to be updated for untethered jailbreaks of newer iOS versions.
In November 2008 the iPhone Dev Team released QuickPWN to jailbreak iPhone OS 2.2 on iPhone and iPod touch, with options to enable past functionality that Apple had disabled on certain devices.
After Apple released iOS 3.0 in June 2009, the Dev Team published redsn0w as a simple jailbreaking tool for Mac and Windows, and also updated PwnageTool primarily intended for expert users making custom firmware, and only for Mac. It continues to maintain redsn0w for jailbreaking most versions of iOS 4 and iOS 5 on most devices.
George Hotz developed the first iPhone unlock. In 2009, he released a jailbreaking tool for the iPhone 3GS on iPhone OS 3.0 called purplera1n, and blackra1n for iPhone OS version 3.1.2 on the 3rd generation iPod touch and other devices.
Nicholas Allegra (better known as "comex") released a program called Spirit in May 2010. Spirit jailbreaks devices including iPhones running iPhone OS 3.1.2, 3.1.3, and iPad running iOS 3.2 In August 2010, comex released JailbreakMe 2.0, the first a web-based tool to jailbreak the iPhone 4 (on iOS 4.0.1). In July 2011, he released JailbreakMe 3.0, a web-based tool for jailbreaking all devices on certain versions of iOS 4.3, including the iPad 2 for the first time (on iOS 4.3.3).
Chronic Dev Team initially released greenpois0n in October 2010, a desktop-based tool for jailbreaking iOS 4.1 and later iOS 4.2.1 on most devices including the Apple TV, as well as iOS 4.2.6 on CDMA (Verizon) iPhones.
As of December 2011, redsn0w included the "Corona" untether by pod2g for iOS 5.0.1 for iPhone 3GS, iPhone 4, iPad (1st generation), and iPod touch (3rd and 4th generation). As of June 2012, redsn0w also includes the "Rocky Racoon" untether by pod2g for iOS 5.1.1 on all iPhone, iPad, and iPod touch models that support iOS 5.1.1.
The iPhone Dev Team, Chronic Dev Team, and pod2g collaborated to release Absinthe in January 2012, a desktop-based tool to jailbreak the iPhone 4S for the first time and the iPad 2 for the second time, on iOS 5.0.1 for both devices and also iOS 5.0 for iPhone 4S. In May 2012 it released Absinthe 2.0, which can jailbreak iOS 5.1.1 untethered on all iPhone, iPad, and iPod touch models that support iOS 5.1.1, including jailbreaking the third-generation iPad for the first time. The hackers together called the evad3rs released an iOS 6.X jailbreak tool called "evasi0n" available for Linux, OS X, and Windows on Monday, February 4, 2013 at noon Eastern Standard Time. Due to the high volume of interest in downloading the jailbreak utility, the site initially gave anticipating users download errors. When Apple upgraded its software to iOS 6.1.3 it permanently patched out the evasi0n jailbreak. In April 2013, the latest versions of Sn0wbreeze was released, which added the support for tethered jailbreaking on A4 devices (i.e. devices not newer than the iPhone 4, iPad (1st generation), or iPod touch (4th generation)).
On December 22, 2013, the evad3rs released a new version of evasi0n that supports jailbreaking iOS 7.0.x, known as evasi0n7. On December 30, 2013, winocm, ih8sn0w and SquiffyPwn released p0sixspwn for untethering devices on iOS 6.1.3 – 6.1.5. Initially, it was necessary to jailbreak tethered using redsn0w and install p0sixpwn at Cydia. A few days later, on January 4, 2014, the same team released a version of p0sixpwn for jailbreaking using a computer.
iOS 7.1 patched the exploits used by evasi0n7, and on June 23, 2014, Pangu, a Chinese untethered jailbreak was released for iOS 7.1.
On October 22, 2014, Pangu Team released Pangu8 to jailbreak all devices running iOS 8-8.1. The first versions did not bundle Cydia, nor was there an iOS 8 compatible version of Cydia at the time.
On November 29, 2014, TaiG team released their jailbreak tool called "TaiG" for devices running iOS 8.0-8.1.1. On December 10, 2014, the app was updated to include support for iOS 8.1.2. On July 3, 2015, TaiG 2.3.0 was released, which includes support for iOS 8.0-8.4.
On 10 September 2015, 6 days before iOS 9 was released, iH8sn0w had demonstrated a working exploit on his Twitter page, linking to a YouTube video.
On October 14, 2015, Pangu Team released Pangu 9, their jailbreak tool for iOS 9.0 through 9.0.2. On March 11, 2016, Pangu Team updated their tool to support iOS 9.1 for 64-bit devices.
On July 17, 2016, Pangu Team released Pangu93, a semi-untethered jailbreak tool for iOS 9.2-9.3.3. It was the first semi-untethered jailbreak and at the same time made within a sideloaded app, and included support only for 64bit devices.
On mid-March 2017, jk9357 (aka @REALKJCMEMBER), part of the KJC (Kim Jong Cracks) hacking team released the first semi-untethered jailbreak for 32bit devices on 9.1-9.3.4. This jailbreak made use of some of the Pegasus vulnerabilities.
On December 21, 2016, well-known hacker Luca Todesco released a beta semi-untethered jailbreak tool for iOS 10.1 known as Yalu+mach_portal for select 64-bit iOS devices. The jailbreak made use of Ian Beer's, of Google Project Zero, mach_portal exploit. This version is extremely unstable and was only meant for developers. On January 26, 2017, he with help from Marco Grassi, a more stable version for iOS 10.2 was released, eventually supporting all 64-bit iOS devices except for the iPhone 7 and 7 Plus, which is only supported by the older, more unstable version for 10.1.1. This jailbreak made use of Ian Beer's, of Project Zero, extra_recipe exploit. Both jailbreaks are installed through a computer application known as Cydia Impactor, which allows signing of apps not in the App Store. Todesco said that the newer version would be eventually updated to support the iPhone 7 and 7 Plus up to iOS 10.1.1, however, he left the jailbreaking scene on March 28, abandoning both jailbreaks before it was released.
On April 24, 2017 a jailbreak for iOS 10.3.1 on a 64-bit iPhone 7 device was demonstrated at the Janus conference at the Mercedes Benz Arena, on Expo Avenue in Shanghai, by the Pangu Team. A release has yet to be confirmed or announced by Pangu themselves as of yet, but many speculate that if released, that it would support all 64-bit devices including the iPhone 7 and 7+, something that the Yalu 10.2 Jailbreak was not capable of doing back when it was released in late January.
On August 6, 2017, Siguza and Tihmstar released the semi-untethered Phoenix jailbreak for 32-bit devices on iOS 9.3.5.
On September 19, 2017, tihmstar released EtasonJB, a jailbreak for all 32-bit devices on iOS 8.4.1. An exploit was found so that users of the 9.3.5 Phoenix jailbreak could downgrade to 8.4.1 without the use of SHSH blobs as 8.4.1 is an unsigned version of iOS.
On October 15, 2017, the hacker Abraham Masri (known on Twitter as @cheesecakeufo) released the Saïgon jailbreak for all 64-bit devices on iOS 10.2.1.
On December 6, 2017, Abraham Masri released Houdini, the first semi-jailbreak for iOS 10, compatible with iOS 10.x up to 10.3.2 for all 64-bit devices. The application allows installation of themes, resolution changes etc. from basic Cydia repos. It is untethered, but it needs to run the exploit again to install content. The tool has been updated to beta 2 revision 1, adding the compatibility with iOS 11 up to 11.1.2.
On December 11, 2017, Ian Beer released async_wake, an iOS 11.0 up to 11.1.2 exploit that allows tfp0. The exploit has been updated and it has allowed jailbreak apps on jailed devices such as FilzaJailed, FilzaEscaped (which allows root access on a jailed device), MTerminal-Jailed by AppleBetas (which allows the execution of commands on a jailed device) and Torngat by 1GamerDev (a tweak manager that can set a boot logo, change resolution, disable OTA updates and more on a jailed device).
On December 23, 2017, Abraham Masri released to.panga, an iOS 11 up to 11.1.2 WIP jailbreak for developers based on the async_wake exploit by Ian Beer. It has Cydia included but since the jailbreak used a KPPless exploit, Cydia and Substrate have to be rewritten. Abraham Masri has since stated that the project wouldn't be updated due to other tools with the same goal.
On December 24, 2017, tihmstar released H3lix, a semi-untethered jailbreak for all 32-bit devices, compatible with all iOS 10 versions.
Shortly after the release of H3lix, Tihmstar and Siguza released DoubleH3lix, a semi-untethered jailbreak for 64bit devices (excluding the iPhone 7) on iOS 10.x
A jailbreak for iOS 10.x, known as Meridian is being worked on that supports the iPhone 7. It is still in development, as Cydia in not supported yet.
On December 26, 2017 the hacker Jonathan Levin (known on Twitter as @Morpheus____) released LiberiOS, a WIP developer-only jailbreak based on the async_wake exploit by Ian Beer for iOS 11.0 to iOS 11.1.2. Jonathan Levin later stated that LiberiOS would not be officially released with Cydia.
On January 29, 2018, Zimperium, whose goal is to assess issues and locate a possible iOS sandbox escape released two crucial bugs. One of which being a major vulnerability that leads to execution of arbitrary code on different crucial daemons, found in iOS 11.2 up to 11.2.2. The second bug is a full relative (ASLR bypass) control on the stack in CoreBluetooth, that leads to memory corruption (also on 11.2 - 11.2.2)
On February 26, 2018, developer Coolstar (known on Twitter as @coolstarorg) released a public version of the Electra jailbreak for iOS devices on 11.0-11.1.2. This jailbreak uses a KPPless exploit. As Cydia Substrate has not been updated for iOS 11, Electra uses a Substrate alternative known as Substitute.
By device and iOS version, 2007-present
|Device/OS||Release date||Tool||Developer(s)||Jailbreak date||Jailbroken
|2||iPhone 2G / iPhone OS 1.0||June 29, 2007||(no name)||iPhone Dev Team||July 10, 2007||11|
|1||iPod touch||September 5, 2007||(no name)||niacin and dre||October 10, 2007||35|
|2||iPhone 3G / iPhone OS 2.0||July 11, 2008||PwnageTool||iPhone Dev Team||July 20, 2008||9|
|1||iPod touch (2nd generation)||September 9, 2008||redsn0w||iPhone Dev Team and Chronic Dev Team||January 30, 2009||143|
|3||iPhone OS 3.0||June 17, 2009||PwnageTool||iPhone Dev Team||June 19, 2009||2|
|1||iPhone 3GS||June 19, 2009||purplera1n||George Hotz||July 3, 2009||14|
|1||iPad||April 30, 2010||Spirit||comex||May 3, 2010||3|
|3||iOS 4.0||June 21, 2010||PwnageTool||iPhone Dev Team||June 23, 2010||2|
|1||iPhone 4||June 24, 2010||JailbreakMe 2.0||comex||August 1, 2010||38|
|1||Apple TV (2nd generation)||September 1, 2010||PwnageTool||iPhone Dev Team||October 20, 2010||49|
|1||iPad 2||March 11, 2011||JailbreakMe 3.0||comex||July 5, 2011||116|
|3||iOS 5.0||October 12, 2011||redsn0w||iPhone Dev Team||October 13, 2011||1|
|1||iPhone 4S||October 14, 2011||Absinthe||pod2g, Chronic Dev Team, iPhone Dev Team||January 20, 2012||98|
|1||iPad (3rd generation)||March 16, 2012||Absinthe 2.0||pod2g, Chronic Dev Team, iPhone Dev Team||May 25, 2012||70|
|3||iOS 6.0||September 19, 2012||redsn0w||iPhone Dev Team||September 19, 2012||0|
|1||iPhone 5||September 21, 2012||evasi0n||evad3rs||February 4, 2013||136|
|1||iPod touch (5th generation)||October 23, 2012||evasi0n||evad3rs||February 4, 2013||104|
|1||iPad (4th generation)||November 2, 2012||evasi0n||evad3rs||February 4, 2013||94|
|1||iPad Mini||November 2, 2012||evasi0n||evad3rs||February 4, 2013||94|
|3||iOS 7||September 18, 2013||evasi0n7||evad3rs||December 22, 2013||95|
|1||iPhone 5C||September 20, 2013||evasi0n7||evad3rs||December 22, 2013||93|
|1||iPhone 5S||September 20, 2013||evasi0n7||evad3rs||December 22, 2013||93|
|1||iPad Air||November 1, 2013||evasi0n7||evad3rs||December 22, 2013||51|
|1||iPad Mini 2||November 12, 2013||evasi0n7||evad3rs||December 22, 2013||40|
|3||iOS 7.1－7.1.2||May 29, 2014||Pangu||Pangu Team||June 23, 2014||25|
|3||iOS 8||September 17, 2014||Pangu8||Pangu Team||October 22, 2014||35|
|1||iPhone 6||September 19, 2014||Pangu8||Pangu Team||October 22, 2014||33|
|1||iPhone 6 Plus||September 19, 2014||Pangu8||Pangu Team||October 22, 2014||33|
|1||iPad Air 2||October 22, 2014||Pangu8||Pangu Team||October 22, 2014||0|
|1||iPad Mini 3||October 22, 2014||Pangu8||Pangu Team||October 22, 2014||0|
|3||iOS 8.1.1－8.4||November 17, 2014||TaiG, PP Jailbreak||TaiG, PP Jailbreak||November 29, 2014||12|
|1||iPod touch (6th generation)||July 15, 2015||TaiG, PP Jailbreak||TaiG, PP Jailbreak||July 16, 2015||1|
|3||iOS 9||September 16, 2015||Pangu9||Pangu Team||October 14, 2015||28|
|1||iPhone 6S||September 25, 2015||Pangu9||Pangu Team||October 14, 2015||19|
|1||iPhone 6S Plus||September 25, 2015||Pangu9||Pangu Team||October 14, 2015||19|
|1||iPad Mini 4||September 9, 2015||Pangu9||Pangu Team||October 14, 2015||35|
|1||iPad Pro||November 11, 2015||Pangu9||Pangu Team||March 11, 2016||121|
|3||iOS 9.1||October 21, 2015||Pangu9||Pangu Team||March 11, 2016||142|
|1||Apple TV (4th generation)||September 9, 2015||Pangu9||Pangu Team||March 23, 2016||196|
|1||iPhone SE||March 31, 2016||PPJailbreak||PPJailbreak, Pangu Team||July 24, 2016||115|
|3||iOS 10||September 13, 2016||Yalu||Luca Todesco||December 28, 2016||15|
|3||iOS 9.3.5||August 25, 2016||Phoenix||Siguza, tihmstar||August 6, 2017||346|
|3||iOS 8.4.1||August 13, 2015||EtasonJB||tihmstar||September 19, 2017||768|
|3||iOS 11||September 19, 2017||LiberiOS||Jonathan Levin||December 26, 2017||98|
|iOS 11–11.1.2||September 19, 2017||Electra||CoolStar, Ian Beer, xerub, Siguza, theninjaprawn, stek29, angelXwind, comex, isklikas, and goeo_, DHowett, and rpetrich||February 26, 2018||160|
|JailbreakMe 3.0||July 5, 2011||||1||4.2.6 – 4.2.8
4.3 – 4.3.3[a]
|Seas0npass||October 18, 2011||2nd generation Apple TV||4.3 – 5.3
|4.3 – 5.3|
|redsn0w 0.9.15 beta 3||November 1, 2012||1||1||4.1 – 6.1.6||iPhone Dev Team|
|Absinthe 2.0.4||May 30, 2012||1||5.1.1||Yes||pod2g, Chronic Dev Team, iPhone Dev Team|
|evasi0n||February 4, 2013||6.0 – 6.1.2||Yes||pod2g, MuscleNerd, pimskeks, and planetbeing (evad3rs)|
|evasi0n7||December 22, 2013||5||7.0 – 7.0.6||Yes||pod2g, MuscleNerd, pimskeks, and planetbeing (evad3rs)|
|p0sixspwn||December 30, 2013||6.1.3 – 6.1.6||Yes||winocm, iH8sn0w, and SquiffyPwn|
|Pangu||June 23, 2014||5||7.1 – 7.1.2||Yes||dm557, windknown, ogc557, and Daniel_K4 (@PanguTeam)|
|Pangu8||October 22, 2014||5||8.0 – 8.1||Yes||windknown, ogc557, Daniel_K4, zengbanxian, INT80 (@PanguTeam)|
|TaiG||November 29, 2014||8.0 – 8.4||Yes||TaiG|
|PPJailbreak||January 18, 2015||8.0 – 8.4||Yes||PanguTeam and PPJailbreak|
|Pangu9||October 14, 2015||9.0 – 9.1||Yes||PanguTeam|
|Pangu9||March 23, 2016||4th generation Apple TV||9.0 – 9.0.1||Yes||PanguTeam|
|LiberTV||March 3, 2017||4th generation Apple TV||9.1 – 10.1||Semi-Untethered||Marco Grassi, Luca Todesco, Jonathan Levin|
|LiberTV 1.1||December 24, 2017||4th & 5th generation (4K) Apple TV||11.0 – 11.1||Semi-Untethered||Marco Grassi, Luca Todesco, Jonathan Levin|
|PPJailbreak||July 24, 2016||9.2 – 9.3.3||Semi-Untethered||PanguTeam and PPJailbreak|
|mach_portal + Yalu||December 22, 2016||Pro||10.0.1 – 10.1.1 (depends on device)||Semi-Untethered||Luca Todesco|
|yalu102||January 26, 2017||6||10.0.1 – 10.2||Semi-Untethered||Luca Todesco and Marco Grassi|
|Phœnix||August 6, 2017||9.3.5||Semi-Untethered||Siguza and tihmstar|
|Etason||September 19, 2017||8.4.1||Yes||tihmstar|
|Saïgon||October 15, 2017||10.2.1||Semi-Untethered||Abraham Masri|
|h3lix||December 24, 2017||10.0 – 10.3.3||Semi-Untethered||tihmstar|
|LiberiOS||December 25, 2017||11.0 – 11.1.2||Semi-Untethered||Marco Grassi, Luca Todesco, Jonathan Levin, Ian Beer|
|g0blin||January 13, 2018||10.3 – 10.3.3||Semi-Untethered||Sticktron, Siguza, Ian Beer, windknown, Luca Todesco, xerub, tihmstar, saurik, uroboro, Abraham Masri, arx8x, PsychoTea, Cryptic|
|OverCl0ck||January 26, 2018||watchOS3||Semi-Untethered||PsychoTea, Siguza|
|Electra||January 12, 2018||11.0-11.1.2||Semi-Untethered||CoolStar, Ian Beer, xerub, Siguza, theninjaprawn, stek29, angelXwind, comex, isklikas, and goeo_, DHowett, and rpetrich|
- The Verizon CDMA iPhone 4 ran on iOS 4.2.5 to 4.2.10, with incremental updates being bugfixes that were simultaneously applied from 4.3.1 to 4.3.5.
- "How to Jailbreak iOS 10.2 Using Yalu102". Retrieved 2 August 2017.
- Nick Statt (Oct 27, 2015). "US government says it's now okay to jailbreak your Phone, tablet and smart TV". The Verge. Retrieved October 28, 2016.
- Morris, Paul (2017-12-12). "iOS 10.2 tfp0 Exploit For Potential Jailbreak Released By Google's Ian Beer". redmondpie. Retrieved 2018-01-18.
- "Two Major Cydia Hosts Shut Down as Jailbreaking Fades in Popularity". Retrieved 2017-11-25.
- Siegal, Jacob (2017-11-26). "This might be the end of iPhone jailbreaking". BGR. Retrieved 2017-11-27.
- Barbosa, Joaquim (2017-12-26). "LiberiOS jailbreak for iOS 10.2 and below released, no Cydia yet". idownloadblog. Retrieved 2018-01-18.
- Prabhu, Gautam (2018-01-13). "Electra Jailbreak Toolkit for iOS 10 – iOS 10.2 Released". iphonehacks. Retrieved 2018-01-18.
- Mike Keller (February 13, 2012). "Geek 101: What Is Jailbreaking?". PCWorld. IDG. Retrieved February 15, 2012.
- "Jailbreak iPhone, iPad, iPod touch, and Apple TV". Retrieved March 31, 2015.
- iOS Hacker's Handbook. Miller, Charlie; Blazakis, Dion; DaiZovi, Dino; Esser, Stefan; Iozzo, Vincenzo; Weinmann, Ralf-Philip. John Wiley & Sons. 2012. pp. 309–310. ISBN 978-1-118-22843-2. Retrieved January 18, 2013.
- Höbarth, S.; Mayrhofer, R. "A framework for on-device privilege escalation exploit execution on Android" (PDF). Proc. IWSSI/SPMU 2011: 3rd International Workshop on Security and Privacy in Spontaneous Interaction and Mobile Phone Use, colocated with Pervasive 2011. mayrhofer.eu.org. Retrieved January 18, 2013.
- Robert McMillan (November 5, 2008). "A Jailbreak for Google's Android". PCWorld. IDG. Retrieved January 18, 2013.
- David Kravets (April 11, 2011). "Sony Settles PlayStation Hacking Lawsuit". Threat Level. Wired. Retrieved January 18, 2013.
- Chris Foresman (December 13, 2010). "iPhone jailbreaker set to bring Cydia to Mac OS X". Ars Technica. Condé Nast. Retrieved August 2, 2011.
- Steve Kovach (13 April 2013). "Frustration Builds With Apple's Inconsistent Rules For App Developers". Business Insider.
- Ryan Singel (April 15, 2010). "Apple App Store Bans Pulitzer-Winning Satirist for Satire". Wired. Retrieved February 12, 2011.
- "Rejected Apps". imore.com. Retrieved 2017-02-19.
- "Jailbreak! New Rules Allow Unapproved iPhone Apps". Fox News.
- Adam Dachis (March 14, 2011). "How to Get the Most Out of Your Jailbroken iOS Device". Lifehacker. Gawker Media. Retrieved August 2, 2011.
- Jenna Wortham (May 12, 2009). "Unofficial Software Incurs Apple's Wrath". The New York Times. Retrieved August 2, 2011.
- Zdziarski, Jonathan (2008). iPhone Open Application Development: Write Native Applications Using the Open Source Tool Chain. pp. 3–4. ISBN 9780596554187.
- Landau, Ted (2009). Take control of your iPhone. p. 107. ISBN 9781933671543.
- Nathan T. Washburn (May 4, 2012). "Apple Discovers a New Market in China: Rich Boyfriends". HBR Blog Network. Harvard Business Review. Retrieved January 9, 2013.
- Brian X. Chen (August 7, 2009). "6 Reasons to Jailbreak Your iPhone". Gadget Lab. Wired. Retrieved May 1, 2012.
- Ryan Block (September 11, 2007). "iUnlock released: the first free, open source iPhone SIM unlock software". Engadget. Aol. Retrieved February 1, 2014.
- Ian Paul (December 22, 2008). "3G iPhone Unlock Expected". PCWorld. IDG. Retrieved May 1, 2012.
- Fleishman, Glen. "Hacking Team hack reveals why you shouldn't jailbreak your iPhone". MacWorld. Retrieved 2 August 2015.
- Heath, Alex. "New Jailbreak App Stalks All Of Your iPhone's Activity And Makes It Available Online". Cult of Mac. Retrieved 2 August 2015.
- Hattersley, Lou. "Now pirated iOS apps can be installed without jailbreak". Macworld. Retrieved 2 August 2015.
- Kazmucha, Allyson. "Jailbreak, app piracy, and the true cost of theft". iMore. Retrieved 2 August 2015.
- Panzarino, Matthew (1 January 2013). "iOS App Piracy Continues, Now Without Jailbreak". The Next Web. Retrieved 4 May 2018.
- Joseph Volpe (January 20, 2012). "Absinthe A5 jailbreak released for iPhone 4S, Hacker Dream Team makes untethered dreams come true". Engadget. Aol. Retrieved January 20, 2012.
- John Paul Titlow (January 20, 2012). "Now You Can Jailbreak Your iPhone 4S and iPad 2". ReadWriteWeb. Archived from the original on January 22, 2012. Retrieved January 20, 2012.
- Fish, Elizabeth (October 24, 2011). "Semi-tethered iOS 5 Jailbreak Developed, Useful On The Move". PCWorld. IDG. Retrieved April 22, 2012.
- "HTC Bootloader Unlock Instructions". htcdev.com. Retrieved 26 October 2014.
- "Official Bootloader Unlock instructions". sonymobile.com.
- "#unlocking-the-bootloader Google instructions on bootloader unlocking". source.android.com. Archived from the original on May 21, 2011. Retrieved October 26, 2014.
- Hildenbrand, Jerry (2 Feb 2012). "Android A to Z: What is sideloading?". Android Central. Retrieved 9 July 2014.
- "Unauthorized modification of iOS can cause security vulnerabilities, instability, shortened battery life, and other issues". Apple Support. Retrieved 9 July 2014.
[U]nauthorized modification of iOS is a violation of the iOS end-user software license agreement and because of this, Apple may deny service for an iPhone, iPad, or iPod touch that has installed any unauthorized software.
- Mayo, Benjamin (10 June 2015). "Xcode 7 allows anyone to download, build and 'sideload' iOS apps for free".
- Brigid Andersen (November 9, 2009). "Australian admits creating first iPhone virus". ABC Online. Retrieved October 26, 2011.
- "New iPhone worm can act like botnet say experts". BBC News. November 23, 2009. Retrieved April 10, 2010.
- Mikko (November 22, 2009). "Malicious iPhone Worm". News from the Lab. F-secure. Retrieved April 10, 2010.
- Gruber, John. "PDF security exploit". Daring Fireball. Retrieved 15 August 2015.
- Adrian Kingsley-Hughes (May 28, 2011). "'Should I Jailbreak My iPhone?' And Other Jailbreaking Questions Answered". Tech. Forbes. Retrieved November 14, 2012.
- Sharon Vaknin (June 27, 2012). "How to unjailbreak your iPhone, iPad, or iPod Touch and is illegal". CNET. CBS Interactive. Retrieved November 14, 2012.
- Christopher Breen (December 29, 2008). "The Best IPhone Apps Not in the App Store". PCWorld. IDG. Retrieved November 14, 2012.
- "Cydia Eraser".
- Greenberg, Andy (February 14, 2012). "Unauthorized iPhone And iPad Apps Leak Private Data Less Often Than Approved Ones". Tech. Forbes. Retrieved February 15, 2012.
- Joseph Steinberg (August 31, 2015). "Massive iPhone User Data Breach: What You Need to Know". Inc. Retrieved September 2, 2015.
- "Apple adds jailbreak resistance to recent iPhone 3GS models". Retrieved 2015-06-20.
- Robertson, Jordan (July 8, 2011). "Security holes discovered in iPhones, iPads". News & Record. Associated Press. Archived from the original on July 11, 2011. Retrieved July 9, 2011.
- Perez, Sarah. "Apple's iOS 9.1 Shuts Down The Pangu Hacking Team's Jailbreak". TechCrunch. Retrieved 2015-11-11.
- "Taig and Pangu working on Jailbreak for IOS 8.4.1". Archived from the original on 23 September 2015.
- "iOS 9's Rootless security system dubbed as a 'heavy blow' to jailbreak community". Retrieved 10 October 2015.
- "About the security content of iOS 10.2.1". Apple Support. Retrieved 2017-03-19.
- Duncan Geere (July 28, 2010). "Investigation: Is it legal to jailbreak a UK iPhone?". Wired UK. Retrieved October 26, 2012.
- Greenberg, Andy. "iPhone Uber-Hacker Comex Is Out At Apple". Forbes. Retrieved 15 August 2015.
- Heath, Alex. "After Doing "Insane Things With iOS," Jailbreak Hacker Winocm Joins Apple". Cult of Mac. Retrieved 22 November 2015.
- "8.4.1 release notes". Apple. Retrieved 15 August 2015.
- "Unauthorized modification of iOS can cause security vulnerabilities, instability, shortened battery life, and other issues". Apple Support. Retrieved 2017-02-14.
- Rosalyn Page (August 5, 2010). "Could jailbreaking your iPhone land you in jail?". PC & Tech Authority. Retrieved January 21, 2013.
- Michael Geist (November 7, 2012). "Canadian Copyright Reform In Force: Expanded User Rights Now the Law". michaelgeist.ca. Retrieved November 13, 2012.
- "Canada's C-11 Bill and the Hazards of Digital Locks Provisions". Electronic Frontier Foundation. February 10, 2012. Retrieved October 17, 2012.
- The Canadian Press (October 13, 2011). "Phone 'jailbreaking' allows users to hack their phone". CTV News. Retrieved October 17, 2012.
- Pranesh Prakash (April 29, 2010). "Technological Protection Measures in the Copyright (Amendment) Bill, 2010". Centre for Internet and Society. Retrieved November 10, 2012.
- Nate Anderson (April 22, 2010). "India's copyright proposals are un-American (and that's bad)". Ars Technica. Condé Nast. Retrieved November 10, 2012.
- Pranesh Prakash (May 23, 2012). "Analysis of the Copyright (Amendment) Bill 2012". Centre for Internet and Society. Retrieved November 10, 2012.
- Michael Geist (April 10, 2008). "New Zealand's Digital Copyright Law Demonstrates Anti-Circumvention Flexibility". Michael Geist. Retrieved October 26, 2012.
- Stephen Bell (September 30, 2011). "Law changes required before NZ ratifies ACTA". ComputerWorld New Zealand. Archived from the original on September 30, 2011. Retrieved October 26, 2012.
- Kenny Chee (August 12, 2010). "iPhone jailbreak may be legal here, but... But there will be certain legal provisions". DigitalOne. AsiaOne. Archived from the original on August 15, 2010. Retrieved November 10, 2012.
- Jim Martin (March 14, 2012). "How to jailbreak your iPhone: Unleash the full potential of your iPhone". PC Advisor. Retrieved January 21, 2013.
- Warwick Ashford (July 30, 2010). "iPhone jailbreaking is 'okay under EU law'". Computer Weekly. Electronics Weekly. Retrieved January 21, 2013.
- Copyright Office, Library of Congress (October 2012). "Exemption to Prohibition on Circumvention of Copyright Protection Systems for Access Control Technologies" (PDF). Federal Register. Retrieved February 3, 2014.
- David Goldman (July 26, 2010). "Jailbreaking iPhone apps is now legal". CNN Money. Retrieved September 11, 2010.
- "Exemption to Prohibition on Circumvention of Copyright Protection Systems for Access Control Technologies". Federal Register. The United States Government. October 28, 2015. Retrieved November 20, 2015.
- "Transcript of "Jailbreak?" (July 30, 2010)". On The Media. July 30, 2010. Archived from the original on July 31, 2010. Retrieved September 11, 2010.
- Leander Kahney (July 26, 2010). "Apple's Official Response To DMCA Jailbreak Exemption: It Voids Your Warranty". Cult Of Mac. Retrieved October 26, 2011.
- Tim Wu (October 4, 2007). "The iPhone Freedom Fighters". Technology. Slate. Retrieved October 26, 2011.
- "Federal Register: Exemption to Prohibition on Circumvention of Copyright Protection Systems for" (PDF). Retrieved September 11, 2010.
- "Copyright office provides exemption to DMCA". United States Copyright Office. February 12, 2009. Retrieved July 17, 2009.
- Declan McCullagh (July 26, 2010). "Feds say mobile-phone jailbreaking is OK". CNET. CBS Interactive. Retrieved October 26, 2011.
- "Exemption to Prohibition on Circumvention of Copyright Protection Systems for Access Control Technologies" (PDF). U.S. Copyright Office. Retrieved October 31, 2012.
- Timothy B. Lee (October 25, 2012). "Jailbreaking now legal under DMCA for smartphones, but not tablets". Ars Technica. Condé Nast. Retrieved October 26, 2012.
- "New DMCA Exemptions Allow Rooting Phones (But Not Tablets), Unapproved Phone Unlocks Will Be A Thing Of The Past". Android Police. Retrieved October 31, 2012.
- Ricker, Thomas (July 10, 2007). "iPhone Hackers: "we have owned the filesystem"". Engadget. Retrieved July 17, 2009.
- Topolsky, Joshua (August 6, 2007). "First third-party "game" app appears for iPhone". Engadget. Retrieved July 17, 2009.
- Wilson, Ben (October 10, 2007). "Official iPhone 1.1.1 jailbreak released with easy-to-follow instructions; does not require TIFF exploit". CNET. CBS Interactive. Retrieved November 10, 2009.
- Gregg Keizer (October 29, 2007). "Hacker Software Can Install Unauthorized Software on iPhones". PCWorld. IDG. Retrieved August 25, 2011.
- Block, Ryan (February 12, 2008). "ZiPhone: jailbreak any version iPhone out of the box, including 1.1.3 (by Zibri)". Engadget. Retrieved November 13, 2013.
- Charlie Sorrel (July 21, 2008). "Pwnage 2.0 Released: Gadget Lab Jailbreaks iPod Touch". Gadget Lab. Wired. Retrieved November 2, 2011.
- Philip Elmer-DeWitt (July 20, 2008). "Dubious achievement: Hackers 'jailbreak' the iPhone 3G". CNN Money. Retrieved October 26, 2011.
- Erica Sadun (July 20, 2008). "First Look: Pwnage for 2.0". TUAW. Retrieved November 1, 2011.
- Dev Team (May 2011). "Tic tac toe..." Dev Team Blog. Retrieved November 2, 2011.
- iPhone Dev Team (December 27, 2011). "Untethered holidays". Dev Team Blog. Retrieved December 29, 2011.
- Charlie Sorrel (November 25, 2008). "QuickPWN Adds Street View to iPod Touch". Gadget Lab. Wired. Retrieved November 2, 2011.
- Daniel Pan (June 23, 2009). "How to Use Cydia on your iPhone". iPhoneByte. Retrieved November 2, 2015.
- Elizabeth Fish (October 13, 2011). "iOS 5 Jailbreak Is Already Here; Geeks Not Surprised". PCWorld. IDG. Retrieved October 26, 2011.
- Leslie Katz (July 3, 2009). "iPhone 3GS jailbreak, 'purplera1n,' hits Web". CNET. CBS Interactive. Retrieved November 2, 2011.
- Charlie Sorrel (November 5, 2009). "BlackRa1n Plus Blacksn0w: Unlock Any iPhone in Seconds". Gadget Lab. Wired. Retrieved November 2, 2011.
- Thomas Ricker (June 7, 2011). "iOS 5 jailbroken". Engadget. Aol.com. Retrieved October 26, 2011.
- Dan Goodin (May 3, 2010). "Hackers release jailbreak for iPad and newer iPhones". The Register. Retrieved October 26, 2011.
- John D. Sutter (August 2, 2010). "First iPhone 4 'jailbreak' posted online". CNN Tech. CNN. Archived from the original on February 3, 2012. Retrieved October 26, 2011.
- Sean Hollister (August 1, 2010). "Official: iPhone 4 jailbreak hits from iPhone Dev Team (updated with video)". Engadget. Retrieved September 11, 2010.
- Andy Greenberg (August 1, 2011). "Meet Comex, The 19-Year-Old iPhone Uber-Hacker Who Keeps Outsmarting Apple". Forbes. Retrieved December 23, 2012.
- Eric Mack (July 6, 2011). "App enables iPad 2 jailbreak from your browser". CNET. CBS Interactive. Retrieved October 26, 2011.
- P. J. Connolly (July 15, 2011). "Apple Fixes Latest iOS Exploit". eWEEK Labs. eWEEK. Retrieved October 23, 2011.
- jean (July 18, 2011). "Analysis of the jailbreakme v3 font exploit". Sogeti ESEC Lab. Archived from the original on July 22, 2011. Retrieved October 23, 2011.
- David Murphy (October 9, 2010). "iPhone Hackers Square Off With Competing iOS 4 Jailbreaks". PCMag. Retrieved November 2, 2011.
- Charlie Sorrel (February 4, 2011). "Untethered iOS 4.2.1 Jailbreak Live". Gadget Lab. Wired. Retrieved November 2, 2011.
- Elizabeth Fish (October 20, 2010). "Oh Hai! Apple TV Officially Hacked". PCWorld. IDG. Retrieved November 2, 2011.
- Blair Hanley Frank (February 7, 2011). "Verizon iPhone Now Available for Jailbreaking". PCWorld. IDG. Retrieved November 2, 2011.
- Edgar Alvarez (June 4, 2012). "Newest version of ultrasn0w unlocks iPhone 4, 3GS on iOS 5.1.1, RedSn0w 0.9.12b1 also released". Engadget. Aol. Retrieved June 16, 2012.
- Eric Mack (January 20, 2012). "Fly, be free! Jailbreak for iPhone 4S, iPad 2 released". CNET. CBS Interactive. Retrieved January 22, 2012.
- McKinley Noble (January 20, 2012). "How to Jailbreak Your iPhone 4S and iPad 2 via Absinthe A5". PCWorld. IDG. Retrieved January 22, 2012.
- Adrian Kingsley-Hughes (May 26, 2012). "Untethered Jailbreak For Your iOS 5.1.1 iPhone/iPad/iPod Touch Is Here". Tech. Forbes. Retrieved June 1, 2012.
- "iOS 6.1.4 Software Update". apple.com.
- "Silv3rwind iOS 6.1.3 Jailbreak Is A Scam !". Ujailbreakiphone. Retrieved June 3, 2013.
- "Icysn0w iOS 6.1.3 Jailbreak Is Fake !". Ujailbreakiphone. Retrieved June 3, 2013.
- "Sn0wbreeze v2.9.14 Download Available With Support For iOS 6.1.3 Jailbreak". redsn0w. Retrieved June 27, 2013.
- "Download TaiG 1.2.0 To Jailbreak iOS 8.1.2". Retrieved 10 December 2014.
- "TaiG Update Log". Retrieved 3 July 2015.
- "iH8sn0w on Twitter: "iOS 9 Fun"". Retrieved October 10, 2015.
- "iOS 9 has been jailbroken". Retrieved 16 October 2015.
- "Pangu Team Releases iOS 9 Jailbreak For The iPhone, iPad And iPod Touch". Retrieved 16 October 2015.
- "The first iOS 9 jailbreak is here". Retrieved 16 October 2015.
- "Pangu releases 9.2-9.3.3 jailbreak". Retrieved 24 July 2016.
- "Home Depot jailbreak released". Retrieved 21 March 2017.
- "iOS 10 jailbreak beta released (but stay away for now)". Retrieved 2017-04-06.
- EverythingApplePro (2017-01-30), How To Jailbreak iOS 10.2 (All Devices FINAL), retrieved 2017-03-01
- "kpwn/yalu102". GitHub. Retrieved 2017-04-06.
- "qwertyoruiop on Twitter". Twitter. Retrieved 2017-04-06.
- Iqbal, Shaeel. "Electra Jailbreak for iOS 11.0 - iOS 11.1.2 [Release] - iOSNation". iosnation.com. Retrieved 2018-02-27.
- iPhone Dev Team. "How to Escape Jail". Archived from the original on October 5, 2007.
- "The iPhone / iTouch tif exploit is now officially released!". October 10, 2007. Archived from the original on April 2, 2012. Retrieved August 23, 2012.
- Ryan Block (October 10, 2007). "iPhone and iPod touch v1.1.1 full jailbreak tested, confirmed!". Engadget. Aol. Retrieved August 24, 2012.
- PatrickJ (February 1, 2009). "redsn0w Tethered Jailbreak for iPod Touch 2G Released". iSource. Retrieved August 24, 2012.
- Justin Berka (February 3, 2009). "Redsn0w lite jailbreak for 2nd-gen iPod touch released". Ars Technica. Condé Nast. Retrieved January 9, 2013.
- Ross Miller (June 20, 2009). "Pwnage Tool for iPhone OS 3.0 now live, ultrasn0w still on standby". Engadget. Aol. Retrieved October 26, 2011.
- Daniel Brusilovsky (July 3, 2009). "First iPhone 3GS Jailbreak Hits The Web". TechCrunch. The Washington Post. Retrieved October 26, 2011.
- Mike Keller (June 23, 2010). "Does Jailbreaking Still Make Sense with iOS 4.0?". PCWorld. IDG. Retrieved October 26, 2011.
- John Herrman (June 8, 2010). "iOS 4 Jailbroken Within a Day of First Release". Gizmodo. Retrieved November 2, 2011.
- Donald Melanson (October 20, 2010). "Apple TV now jailbreakable with PwnageTool 4.1". Engadget. Aol. Retrieved May 22, 2012.
- Mathew J. Schwartz (July 7, 2011). "Apple iOS Zero-Day PDF Vulnerability Exposed". InformationWeek. Archived from the original on July 10, 2011. Retrieved October 23, 2011.
- Mike Keller (August 23, 2011). "Jailbreaking 101: Which Tool to Use to Hack Your iDevice". PCWorld. IDG. Retrieved October 23, 2011.
- Sarah Jacobsson Purewal (October 18, 2011). "How to Jailbreak Your iOS 5 Device". PCWorld. IDG. Retrieved October 23, 2011.
- iPhone Dev Team (March 7, 2012). "March Mayhem". Dev Team Blog. Retrieved April 22, 2012.
- Edgar Alvarez (April 21, 2012). "RedSn0w updated for Mac and Windows: adds Corona A5 jailbreak, other tools". Engadget. Retrieved April 22, 2012.
- "Dev-Team Blog – Pre-DC". Dev-Team Blog. June 4, 2012. Retrieved May 30, 2013.
- "Jailbreak iOS 6.1.3 On Pre-A5 iPhone And iPod touch Using Redsn0w [How-To Tutorial]". Redmond Pie. March 20, 2013. Retrieved May 30, 2013.
- "evasi0n iOS 7.0.x Jailbreak – official website of the evad3rs". Archived from the original on February 4, 2013.
- "Pangu Untethered Jailbreak of iOS 7.1.1 Has Been Released".
- tihmstar (6 August 2017). "Releasing Phoenix jailbreak for iOS 9.3.5 now!". @tihmstar. Retrieved 2017-12-19.
- "EtasonJB". etasonjb.tihmstar.net. Retrieved 2017-12-19.